This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(44.800000000000004, 2%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDK%3C/text%3E%3C/svg%3E)
In our tenant, I want to find the list of applications who have configured SSO, also want to know those applications who have not configured
Hi,
Graph API can be used to fetch the information.
https://graph.microsoft.com/v1.0/servicePrincipals?$filter=preferredSingleSignOnMode eq 'saml'&$select=appDisplayName,preferredSingleSignOnMode
If the above suggestion helps, please click on 'Accept answer' and 'upvote' it.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(217.60000000000002, 51%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBS%3C/text%3E%3C/svg%3E)
Hi @D Kumar
I hope @Ashok M answer was helpful. In Addition,
Follow the link for more information: https://learn.microsoft.com/en-us/answers/questions/79677/listing-all-enterprise-applications-configured-for
Hope this helps. Do let us know if you have any further queries.
Hi @D Kumar
Just checking in to see if above information was helpful. If you have any further updates on this issue, please feel free to post back.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(41.6, 77%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ER%3C/text%3E%3C/svg%3E)
Hello @D Kumar,
To list of applications have configured SSO, you can make use of below query:
https://graph.microsoft.com/v1.0/servicePrincipals?$filter=preferredSingleSignOnMode eq 'password' or preferredSingleSignOnMode eq 'saml' or preferredSingleSignOnMode eq 'oidc'&$select=displayName,preferredSingleSignOnMode, id, tags
The preferredSingleSignOnMode returns password, saml, notSupported, and oidc as values in the response. Hence to know which applications have configured SSO you need to include all kinds of SSO modes.
You can also determine whether the application is configured as SSO or not by fetching the tags:
WindowsAzureActiveDirectoryIntegratedAppWindowsAzureActiveDirectoryGalleryApplicationPrimaryV1WindowsAzureActiveDirectoryCustomSingleSignOnApplicationThe WindowsAzureActiveDirectoryIntegratedApp tag is common to all types of apps (like SAML and OAuth-based apps).
If preferredSingleSignOnMode is null, then the application is not configured with any SSO. But you have to check the tags to confirm whether SSO is enabled or not.
Reference:
servicePrincipal resource type - Microsoft Graph v1.0 | Microsoft Learn
Hope this helps!
If this answer was helpful, please click "Accept the answer" and mark Yes, as this can be beneficial to other community members.
If you have any other questions or still running into more issues, let me know in the "comments" and I would be happy to help you.